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[3110-01] 


OFFICE OF MANAGEMENT AND 
BUDGET 


PRIVACY ACT OF 1974 


Supplemental Guidance for Matching 
Programs; Request for Comments 


AGENCY: Office of Management and 
Budget. 


ACTION: Request for comments on 
proposed supplement to OMB Privacy 
Act Guidelines. 


SUMMARY: These guidelines estab- 
lish procedures and limitations for 
matching programs carried out by 
Federal agencies to reduce fraud or 
unauthorized payments in a Federal 
program, or to collect debts owned to 
the Federal Government; establish re- 
porting requirements for matching 
programs carried out by Federal agen- 
cies for other purposes; and establish 
reporting requirements for certain dis- 
closures to non-Federal entities for 
purposes of matching. The procedures 
have been developed to assure compli- 
ance with the Privacy Act and to bal- 
ance concerns for personal privacy 
with the need to maintain the integri- 
ty and efficiency of Federal benefit 
programs. 


DATE: Comments must be received on 
or before October 2, 1978. 


ADDRESS: Written comments should 
be addressed to the Information Sys- 
tems Policy Division, Office of Man- 
agement and Budget, Room 9002, New 
Executive Office Building, Washing- 
ton, D.C. 20503. 


FOR FURTHER 
CONTACT: 


Leslie Greenspan, Information Sys- 
tems Policy Division, Room 9002, 
NEOB, 202-395-4814. 


SUPPLEMENTARY INFORMATION: 
During mid-1977, the Office of the In- 
spector General in the Department of 
Health, Education, and Welfare began 
a@ program to reduce fraud and unau- 
thorized payments in certain Federal 
assistance programs. A major part of 
this program, called “Project Match,” 
involved a computerized comparison of 
files of recipients of Aid to Families 
with Dependent Children (AFDC) 
with lists of Federal employees main- 
tained by the Civil Service Commis- 
sion and the Department of Defense. 
Federal employees who appeared to be 
receiving improper AFDC payments 
were investigated to determine wheth- 
er they were receiving benefits to 
which they were not entitled. 

The proponents of Project Match as- 
serted that it was necessary to pre- 
serve the integrity of Federal assist- 
ance programs, to prevent or curtail 
fraud and abuse, and that it would 
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result in considerable financial bene- 
fits to the Government. Critics of the 
program questioned whether the 
matching was an invasion of privacy; 
whether the benefits were great 
enough to outweigh either the privacy 
considerations or the cost of the 
matching itself; and whether the due 
process rights of the subjects of the 
matching were being observed. The 
issue is complex, and interests on both 
sides are compelling. The guidelines 
attempt to balance the competing in- 
terests involved. 

Project Match was subject to the 
Privacy Act of 1974 because it was per- 
formed by a Federal agency using Fed- 
eral personal records. The Office of 
Management and Budget has responsi- 
bility for assisting agencies in inter- 


. preting the Privacy Act. When asked 


for its views on the appropriate basis 
for making disclosures of computer 
tapes of personnel files to HEW, OMB 
advised that a “routine use” was the 
most appropriate mechanism. The act 
defines a routine use as a disclosure, 
made without the advance written 
consent of the subject of the record, 
which is compatible with the purpose 
for which the record was collected (5 
U.S.C. 552a(a)(7)). Before an agency 
can make a disclosure pursuant to a 


routine use, it must publish in the 


FEDERAL REGISTER a notice describing 
it, and allow 30 days for public com- 
ment (5 U.S.C. 552a(e)(11)). 

While Project Match disclosures met 
the requirements for a routine use 
under the Privacy Act and significant 
benefits could be gained it is also clear 
that matching programs present the 
potential for significant invasions of 
personal privacy. Because of its re- 
sponsibilities under the Privacy Act, 
and at the request of the interested 
agencies and the relevant congression- 
al committees, OMB in conjunction 
with the Domestic Policy Staff under- 
took the development of guidelines to 
be used by agencies in future match- 
ing programs. During the period of the 
formulation of the guidelines, HEW 
has not acquired additional records for 
matching programs other than Project 
Match. Two additional matching pro- 
grams planned by HEW were suspend- 
ed pending development of these 
guidelines. The two programs are (1) a 
matching of the Federal employment 
rolls with the list of defaulters under 
the Guaranteed Student Loan Pro- 
gram, and (2) a comparison of the Fed- 
eral employment rolls with the old age 
and disability recipients under pro- 
grams of Social Security Administra- 
tion. OMB has advised HEW, DOD, 
and CSC that we would not object to 
these additional matching programs 
provided they are conducted in accord- 
ance with the proposed guidelines, but 
that no further matching programs 
should be conducted until public com- 


ments on the proposed guidelines are 
evaluated and final guidelines are 
issued. 

The guidelines are advisory rather 
than mandatory, for two _ reasons. 
First, OMB’s responsibility under the 
act is to provide oversight and assist- 
ance, rather than to be a regulatory 
body, and second, the Privacy Act 
places the final responsibility for 
agency actions with the agencies 
themselves. It is OMB’s view that in 
situations such as this, an agency can 
best decide whether to disclose a 
record,. and that OMB should not 
mandate or prohibit disclosures of rec- 
ords, at least until more experience 


»with matching programs is gained. 


OMB expects, however, that agencies 
will follow this guidance. : 

During the comment period, OMB 
will continue to discuss with the Inter- 
nal Revenue Service the interplay of 
these guidelines with existing similar 
requirements for the Internal Reve- 
nue Service. : 

The text of the guidelines is set 
forth below. : 


VELMA N. BALDWIN, 
Assistant to the Director 
Sor Administration. 


MEMORANDUM TO HEADS OF EXECUTIVE 
DEPARTMENTS AND AGENCIES 


Subject: Privacy Act of 1974; Supple- 
mental Guidance for Matching Pro- 


grams.. 


AuvucustT 2, 1978. 

This memorandum requests. the 
views of your agency on the attached 
supplement to the OMB Guidelines on 
the Privacy Act of 1974. 

The supplemental guidelines have 
been developed to establish procedures 
for the conduct of “matching pro- 
grams,” which are computerized com- 
parisons of personal records main- 
tained by various agencies, for the 
purpose of curtailing fraud or unau- 
thorized payments under Federal pro- 


‘grams, or to aid in collecting debts 


owed the Federal Government. A sum- 
mary of the background of the guide- 
lines, along with its full text, is at- 
tached. 

Your views are requested by Septem- 
ber 14, 1978, and should be submitted 
to the Information Systems Policy Di- 
vision, Room 9002, New Executive 
Office Building, Washington, D.C. 
20503. Any questions may be directed 
to the Division at 202-395-4814. 


Sincerely, 


JAMES T. McINTyRE, Jr., 
Director. 


Attachment. 
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OFFICE OF MANAGEMENT AND BUDGET 


IMPLEMENTATION OF THE PRIVACY ACT OF 
1974 SUPPLEMENTARY GUIDANCE 


The following sets forth guidelines 
on matching programs conducted by 
Federal agencies, and further supple- 
ments the Office of Management and 
Budget guidelines for implementing 
section 3 of the Privacy Act of 1974. 
(FEDERAL REGISTER, vol. 40, No. 132, 
dated July 9, 1975, pp. 28949-28978, as 
supplemented in the FEDERAL REcIs- 
TER, vol. 40, No. 284, dated December 
4, 1975, pp. 56741-56743). 


Section 1. Scope. 


These guidelines establish proce- 
dures and limitations for matching 
programs carried out by Federal agen- 
cies to reduce fraud or unauthorized 
payments in a Federal program, or to 
collect debts owed to the Federal Gov- 


ernment; establish reporting require-_ 


ments for matching programs carried 
out by Federal agencies for other pur- 
poses; and establish reporting require- 
ments for certain disclosures to non- 
Federal entities for purposes of match- 
ing. 

These guidelines do not authorize 
activities which are not permitted by 
law; nor do they prohibit activities ex- 
pressly required to be performed by 
law. The procedures and limitations 
set forth in these guidelines apply, 
even when a law authorizes or requires 
a matching program to be carried out, 
to the extent that these procedures 
and limitations would not frustrate 
the legislative purpose of that law. 


Section 2. Definitions. 


(a) General. The definitions in the 
Privacy Act apply to these guidelines 
except to the extent that they are 
modified by this section. 

(b) Additional Definitions. 

(1) A “matching program” is a proce- 
dure carried out by a Federal agency 
under which all or substantially all of 
the records within a system of records 
maintained by the agency, or within a 
subsystem of it, are compared by com- 
puter with— 


(A) All or substantially all of the 
records within a system of records 
(or subsystem) maintained by an- 
other agency, or 

(B) All or substantially all of any 
other group of records (or subsys- 
tem) that would be covered by the 
Privacy Act if the records were 
maintained by an agency. 


Subsection (B) includes as a “match- 
ing program” a program which would 
otherwise not be covered by these 
guidelines for the sole reason that a 
system is maintained or under the con- 
trol of a matching source (see section 
2(b)(3)) which is not an agency, e.g., a 
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State or local unit of Government, or 
a “person” (5 U.S.C. 551(2)). 

A “matching program” does not in- 
clude a computer matching carried out 
by an entity which is not an agency; 
nor does it include computer matches 
which are carried out with records ob- 
tained within the agency; nor does it 
include the matching of records within 
& system of records with other Federal 
records which are not from a system 
of records. (See, however, sec. 6 which 
establishes certain reporting require- 
ments for these activities.) 

A “matching program” includes the 
disclosures which are made to and 
from a “matching agency” (see sec. 
2(b)(2)) to carry out a matching pro- 
gram or as a result of a matching pro- 


gram. 

A “matching program” does not in- 
clude, for example, checks, regardless 
of the number of such checks, on spe- 
cific individuals in response to an ap- 
plication for benefit or as a result of 
the acquisition of information which 
raises questions concerning a specific 
individual’s eligibility which are rea- 
sonably contemporaneous with that 
application or acquisition. 

(2) A “matching agency” is the 
agency which is carrying out (or which 
seeks to carry out) a matching pro- 


gram. 

(3) A “matching source” is an entity 
(including an agency) which discloses 
or provides records to a matching 
agency to conduct a matching pro- 
gram. 


Section 3. Requirements for Maiching 
Programs—Matching Agency. 


(a) General. An agency which in- 
tends to carry out a matching program 
to reduce fraud or unauthorized pay- 
ments in a Federal program, or to col- 
lect debts owed to the Federal Govern- 
ment, should initiate and conduct the 
program in accordance with these 
guidelines. 

(b) A matching agency should carry 
out a matching program— 

(1) Only if there is no other way to 
accomplish the purposes of the match- 
ing programs without incurring sub- 
stantially greater costs; 

(2) Only in accordance with the 
Report on New Systems (see section 
3(b)(3)), and only if the matching pro- 
gram will be fair and equitable to the 
individuals involved and will minimize 
any “chilling” effect upon the exercise 
of individual rights; 

(3) Either by (a) establishing a new 
system of records for each matching 
program (a “matching system’’), or (b) 
by submitting a Report on New Sys- 
tems in accordance with subsection (0) 
of the act and OMB Circular A-108, if 
an existing system is amended; and 

(4) Only if there will be a demon- 
strable financial benefit to the Federal 
Government from the matching pro- 
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gram, and the benefit significantly 
outweighs any harm to individuals. 
Benefits may include dollar savings 
(from the reduction of the numbers of 
unqualified recipients; from deter- 
rence of those who would seek bene- 
fits for which they are not eligible; 
from expected improvements in defi- 
cient Federal program operation, etc.) 
and dollar recoveries from those who 
have received benefits to which they 
were not entitled. Any costs associated 
with the matching program, including 
those of the matching, collection, liti- 
gation, etc., should be deducted from 
the benefits. 

(c) In addition to the requirements 
set forth in OMB Circular A-108 and 
in these guidelines, the Report on New 
Systems for a new or a changed 
system of records should include the 
following: 

(1) An explanation of why the 
matching program is needed; 

(2) An explanation of why the 
matching program can reasonably be 
expected to meet its objectives; 

(3) A description of the other means 
of achieving the objectives of the 
matching program that the matching 
agency has used or considered; 

(4) A description of the procedures 
pursuant to which the matching pro- 
gram will be carried out, including a 
description of the provisions for safe- 
guarding information, and for protect- 
ing personal privacy and other individ- 
ual rights; 

(5) A statement of when the match- 
ing program will begin, and when it 
will end; 

(6) A description of the disclosures 
of records which will be made to or 
from the system, including the legal 
justification for any routine use in- 
volved; 

(7) A description of any new infor- 
mation which will be maintained as a 
result of the matching program; 

(8) An identification of each pro- 
posed matching source for the pro- 
gram; a copy of each routine use each 
source proposes for the matching pro- 
gram; and an explanation of every 
other authority by which the match- 
ing source furnishes records; and 

(9) A discussion of those findings set 
forth in sections 3(b) (2) and (4). 

(d) The matching agency should 
assure before expenses are incurred 
that there is a written agreement 
among the participating agencies con- 
cerning the expenses of the matching 
program that each will bear. 

(e) Matching programs should be 
carried out by officials of the match- 
ing agency and not by contract or 
grant. 

(f) The number of persons with 
access to information used in the 
matching program should be limited 
to the minimum number necessary to 
accomplish its purposes, and screening 
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procedures for such employees should 
be established where appropriate, 
taking into account the potential for 
harm or disadvantage that a disclosure 
of the information might entail. 

(g) The matching program should 
minimize the number and extent of 
the disclosures of information which 
pertain to identifiable individuals. 

(h) The matching agency should not 
collect records for a matching program 
from a matching source other than in 
accordance with these guidelines. 


Section 4. Disclosures, Accounting and 
Destruction of Records. 


(a) Disclosures of records from a 
matching program should be made 
only with the prior written approval 
of the matchig agency official who is 
responsible for the system of records. 

(b) Except when specifically re- 
quired by law, there should be no dis- 
closure by the matching agency of rec- 
ords obtained from a matching source 
other than as provided in this section. 

(c) There should be no disclosure of 
those records which result from a 
matching program unless the disclo- 
sure is necessary to conduct the 
matching program or to achieve its 
purposes, is limited to the minimum 
number of persons, and is limited to 
the minimum amount of information. 

(d) With regard to disclosures pursu- 
ant to the “routine use” provisions of 
the act (5 U.S.C. 552a(d)(3)) of those 
records which result from a matching 
program, the agency should: 

(1) Make the routine use as specific 
and limited as possible, and, wherever 
possible, of a limited duration; 

(2) Clearly state as a part of the rou- 
tine use that the records to be dis- 
closed include records which have re- 
sulted from a matching program; 

(3) Publish with the FEepERAL REcIs- 
TER notice of the routine use an expla- 
nation of the legal justification for the 
routine use; 

(4) Provide with the FEDERAL REcIs- 
TER notice of the routine use an expla- 
nation of why the records which may 
be disclosed pursuant to the routine 
use cannot be disclosed without identi- 
fying individuals; 

(5) Republish in the FEepERAL REcI!s- 
TER, following consideration of the 
comments received, an explanation of 
the comments received and the 
changes made in sufficient detail to 
permit an understanding of the basis 
for the acceptance or rejection of each 
comment by the agency; and 

(6) Ensure that the disclosure is con- 
sistent with any conditions placed 
upon the disclosure of records by the 
matching source at the time the rec- 
ords were disclosed to the matching 
agency by the matching source. 

(e) All disclosures of those records 
which result from a matching program 
which are specifically authorized by 


law but are not made pursuant to the 
routine use provisions of the act, 
should be made in accordance with the 
procedures in paragraph (d) of this 
section whenever possible. For exam- 
ple, although the procedures in (d) 
would not apply to each disclosure 
made in response to a written request 
by the head of a law enforcement 
agency, the procedures of (d) should 
be followed prior to the initial disclo- 
sure to the law enforcement agency. 

(f) Whenever an agency discloses 
records which result from a matching 
program the agency should, as an ex- 
press condition of the disclosure, set 
forth the following: 

(1) The use to which the records will 
be put by the entity to whom they are 
disclosed; 

(2) A stipulation that the entity re- 
ceiving the records will disclose them 
further only where required by law or 
where (e.g., in the case of a law en- 
forcement or administrative agency) 
such disclosure is compatible with the 
purpose for which the records were 
originally disclosed to it; 

(3) The date by which the records 
transferred will be destroyed, returned 
to the matching agency or, if it is nec- 
essary that the records be retained by 
the entity to which they were dis- 
closed, a written explanation of that 
necessity. 

(g) Compliance with these guidelines 
by the matching agency does not re- 
lieve that agency of compliance with 
the requirements of the act, including, 
for example, the requirement to keep 
an accurate accounting of disclosures 
of records (5 U.S.C. 552a(c)). 

(h) All records which result from a 
matching program should be de- 
stroyed within 6 months, and those 
records which are obtained from a 
matching source should be destroyed 
or returned to the matching source 
within 6 months of the beginning of 
the matching program, except for 
those records which are (1) necessary 
to the completion of pending law en- 
forcement activities, or administrative 
activities which are consistent with 
the purposes of the matching program 
and are authorized by law; or (2) oth- 
erwise specifically required to be main- 
tained by law. Any extension of the 6- 
month period should be published, 
with appropriate explanation, in the 
FEDERAL REGISTER. As soon as all of 
the records have been returned to the 
matching source or destroyed, the 
matching agency should notify the 
Office of Management and Budget in 
writing. 


Section 5. Requirements for Matching 
Programs—Matching Sources 


(a) General. The OMB Privacy Act 
Guidelines in discussing Conditions of 
Disclosure, state in part: 


Disclosure, however, is permissive 
not mandatory. An Agency is author- 
ized to disclose a record for any pur- 
pose enumerated below [the excep- 
tions to the advance written consent 
of the individual to whom the infor- 
matio pertains] when it deems that 
disclosure to be appropriate and con- 
sistent with the letter and intent of 
the act and these guidelines. 

Nothing in the Privacy Act should 
be interpreted to authorize or compel 
disclosures of records, not otherwise 
permitted or required, to anyone other 
than the individual to whom a record 
pertains pursuant to a request by the 
individual for access to it. 

Agencies shall not automatically dis- 
close a record to someone other than 
the individual to whom it pertains 
simply because such a disclosure is 
permitted by this subsection. Agencies 
shall continue to abide by other con- 
straints on their authority to disclose 
information to a third party including, 
where appropriate, the likely effect 
upon the individual of making that 
disclosure. Except as prescribed in sub- 
section (d)(1), (individual access to rec- 
ords) this act does not require disclo- 
sure of a record to anyone other than 
the individual to whom the record per- 
tains (40 FR 28949 at 28953, July 9, 
1975). 

(b) Specific Requirements. 

(1) A Federal matching source 
should review with the matching 
agency the purposes of and the proce- 
dures for the matching program, and 
determine after such review whether 
to make the disclosure requested of it 
by the matching agency. 

(2) All disclosures of records from-a 
system of records by a Federal match- 
ing source to a matching agency pur- 
suant to a matching system program 
should be made in accordance with 
this section and the “routine use” pro- 
visions of the act. 

(3) Unless specifically provided oth- 
erwise by law, no disclosure should be 
made by a matching source for a 
matching program unless “* * * the 
use of such record [is] for a purpose 
which is compatible with the purpose 
for which [the record] was collected.” 
[5 U.S.C. 552a(a)(7)1]. 

(4) All routine uses permitting dis- 
closures for matching programs 
should— 

(A) Be as specific and limited as 

e; 
'  (B) Expressly state that the rou- 
* tine use is intended to permit the 
disclosure of records for a matching 


program, 
(C) Identify the matching pro- 


gram, 

(D) Set forth any conditions which 
the matching source has established 
for the use of the records by the 
matching agency in addition to 
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those set forth in these guidelines; 
and 

(E) Be noticed in the FepERAL REc- 
ISTER with an explanation or the 
legal justification for the routine 
use. 


Section 6. Agency Reports on Other 
Programs 


(a) Each agency which is carrying 
out, or which intends to carry out, a 
matching program for purposes other 
than to reduce fraud or unauthorized 
payments in Federal programs, or to 
collect debts owed to the Federal Gov- 
ernment, should provide notice of that 
program to the Office of Management 
and Budget. 

(b) Each agency which intends to 
disclose records from a system of rec- 
ords for purposes of carrying out what 
would be a matching program if the 
program were being carried out by a 
Federal agency, should provide notice 
to the Office of Management and 
Budget. 

(c) Each agency which intends to 
carry out, or is carrying out, an intra- 
agency matching program that would 
be subject to these guidelines if it in- 
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volved the disclosure by another 
agency of records to it, should provide 
notice to the Office of Management 
and Budget. 

(d) These notices should include a 
description of the program in suffi- 
cient detail to permit an understand- 
ing of the purposes and the proce- 
dures of the program, and should set 
forth the legal authority for the pro- 
gram and the action of the agency. 
The notice and description of the 
matching program should be submit- 
ted at least 60 days prior to the disclo- 
sure of information by the agency or 
60 days prior to the initiation of the 
proposed program, or, as soon as prac- 
ticable. 


Section 7. Safeguards. 


(a) Each matching program (includ- 
ing those matching programs upon 
which reports were made under sec- 
tion 5 of these guidelines) should in- 
corporate physical, administrative and 
technical safeguards against unau- 
thorized disclosure, alteration, or de- 
struction. Safeguards should be select- 
ed commensurate with the risk and 
magnitude of loss, harm or disadvan- 
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tage that could result from an unau- 
thorized disclosure, alteration or de- 
struction of the information within 
the matching system. 

(b) The safeguards should, unless 
the matching source of the records 
agrees otherwise, provide that the rec- 
ords are protected .at least as strin- 
gently as in the systems from which 
the records were obtained. 

(c) Periodic audits or evaluations of 
the operation of these safeguards 
should be conducted during the 
matching program to assure their ade- 
quacy. 

(d) The agency official who is re- 
sponsible for the system should certify 
that based upon the audit or evalua- 
tion, the safeguards are adequate, and 
that they meet all applicable policies, 
regulations and standards. 


Section 8. Implementation and 
Oversight 


The Office of Management and 
Budget will oversee the implementa- 
tion of and shall review, interpret and 
advise upon agency proposals and ac- 
tions under these guidelines. 


{FR Doc. 78-21830 Filed 8-3-78; 8:45 am] 


FEDERAL REGISTER, VOL. 43, NO. 151—FRIDAY, AUGUST 4, 1978 





